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Circuit provided with a secure external access 

This invention relates to a circuit provided with 
a secure external access. 

The invention relates to the field of 
programmable integrated circuits, mainly that of 
circuits used for conducting confidential transactions. 

Such a circuit comprises a microprocessor and, in 
most cases, a cache memory, a cache memory controller 
and/or a memory management unit. It also generally 
includes a non-volatile memory, one or several working 
memories, such as Random-Access Memory (RAM) or Read- 
only Memory (ROM) . It also includes, in most cases, 
other peripheral devices suited for the applications 
that it is designed to implement. 

On the other hand, the circuit comprises a 
communication interface for external access. In other 
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words, this interface enables the microprocessor to 
exchange data with any component located outside the 
circuit . 

The invention has a particularly advantageous 
5 application when this component is a memory. Indeed, it 
is common to attach an external memory to the 
integrated circuit so that the users of this circuit 
can avail of additional memory space. 

It is obvious that the contents of the external 

10 memory can be accessed by the microprocessor, but they 
can also be accessed by any other piece of equipment. 
Thus, it is easy to read and even modify the data 
recorded in this memory . And yet , it is somet imes 
imperative for these contents to be protected from any 

15 intervention from outside the circuit. This is mainly 
the case when the memories contain security-related 
information, such as a confidential access code or 
verification of a digital signature. 

When loading a program in the external memory, it 

2 0 is provided that the integrated circuit that receives 
this program from the outside verifies its authenticity 
(identity of the issuing party) and its integrity (that 
it has not been modified by any third parties) before 
saving it in the memory. This verification is normally 

2 5 carried out by means of an electronic signature 
protocol . 

It is practically impossible to apply this 
protocol every time the external memory is read by the 
integrated circuit, since this is an operation that 
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requires a considerable amount of processing power and 

is therefore very slow. 

The object of the present invention is therefore 

to increase the protection of this memory against 
5 unwanted access. 

According to the invention, a circuit comprises a 

microprocessor and a set of peripheral devices 

including at least one communication interface for 

external access, in which these peripheral devices, 
10 unlike the communication interface, are connected to 

the microprocessor by an interconnection bus; the 

circuit also comprises a security module connected to 

the interconnection bus and to the communication 

interface by a dedicated link. 
15 According to a preferred embodiment of the 

circuit, the communication interface is adapted to an 

external memory. 

Advantageously, the security module comprises 

encryption means CR. 
2 0 Preferably, the encryption means should use a 

private key. 

It is desirable for the encryption key to be 
longer than the standard length of the data processed 
by the microprocessor, therefore the latter comprises 
2 5 means for breaking encrypted words down into standard- 
length data. 

If the circuit also comprises a cache memory 
associated to a controller, the security module is able 
to process the consecutive accesses of this controller 
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in order to break the encrypted words down into 
standard- length data. 

It is preferable for the encryption key to be 
stored in a one- time -programmable register, and this 
5 register can be saved in a non-volatile memory. 

The present invention will be better understood 
with more detail in the context of the following 
description of a sample embodiment provided for 
illustrative purposes in reference to the appended 
10 figure, which shows a diagram of an integrated circuit 
according to the invention. 

In reference to the figure, an integrated circuit 
IC comprises a microprocessor MIC that is possibly 
connected to a cache memory and/or to a memory 
15 controller (not shown) . It also comprises a 
communication interface UMI and, generally, other 
peripheral devices PER, such as a non-volatile flash 
memory, working random-access memory, etc. 

According to the invention, the circuit also 
2 0 comprises a security module CR. A system bus BUS 
interconnects all the elements in the circuit except 
the communication interface UMI, and a dedicated link 
DL connects this interface UMI to the security module 
CR. 

25 Outside the circuit there is a component MEM that 

can communicate with the communication interface UMI, 
and the invention thus provides protection for the data 
that pass through this interface by means of the 
security module CR. 
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In this specific case, this component is an 
external memory MEM and the communication interface is 
preferably a universal memory interface UMI . 

The security module CR can use various techniques 
5 for encoding or modifying the data it receives from the 
microprocessor MIC through the system bus BUS before 
transmitting the data thus encoded to the communication 
interface UMI so that they do not appear clearly in the 
external memory MEM. It is obvious that this module can 
10 decode the information when it reads the data in this 
external memory MEM in order to return them to the 
microprocessor MIC the same way as they were provided 
initially. 

An advantageous solution consists in resorting to 
15 encryption means that are provided preferably by the 
security module CR. 

Thus, the data are encrypted before being saved 
in the external memory MEM and they are then decrypted 
when they are read by the said memory before being sent 
2 0 over the system bus BUS. 

It is therefore advisable to encode the data on 
the fly before storing them in the external memory MEM. 

The microprocessor MIC can process 8-, 16- or 32- 
bit data. Currently, access to external data is granted 
25 using words with a standard length of 8 , 16 or 32 bits. 

To secure such data requires 8-, 16- or 32 -bit 
encryption respectively. In this case the encryption 
would be very vulnerable, practically inefficient, if 
known algorithms are used. 



It is therefore desirable to choose an algorithm 
that works with 64 -bit data, or even 12 8 -bit whenever 
necessary. Selecting a standard algorithm makes it 
possible to avoid additional constraints while 
guaranteeing a maximum level of security. 

Algorithms with a private key will be given 
preference since they require much less processing time 
than algorithms with public keys. 

As an example, the following algorithms will be 

used : 

AES (Advanced Encryption Standard) , working 
with 128 -bit keys and currently providing 
maximum security, 

DES (Data Encryption Standard) , working with 
64 -bit keys, known for being universally 
used in systems that are less demanding in 
terms of security, 

3DES (Triple Data Encryption Standard) , or 
XDES (Extended Data Encryption Standard) , 
the latter two algorithms are recommended 
for the most demanding systems in terms of 
security, while ensuring high encoding rates 
at a low cost . 
The security module CR makes it possible to 
encrypt data that are longer than the standard length. 
This module is designed for processing 64- or 12 8 -bit 
data, recorded as eight or sixteen 8 -bit words, four or 
eight 16 -bit words, or else two or four 32 -bit words 
respectively in the external memory MEM, therefore 
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access to any of these data is divided into several 8-, 
16* or 32-bit accesses respectively. 

For this purpose, the security module CR is able 
to process grouped or consecutive accesses of the 
5 microprocessor cache memory controller. This cache 
memory contains a partial copy of the external memory 
MEM, which is updated depending on the part of the 
program being run by the microprocessor MIC. Since the 
cache memory is very fast and very close to the 
10 microprocessor MIC, it generally allows for an 
improvement of the circuit's performance. 

The data present in the cache memory is replaced 
by the cache controller in packets. These packets have 
a minimum size of four 32 -bit words, regardless of the 
15 size of the data processed by the microprocessor MIC. 

It must be noted here that the cache memory can 
also be used by the circuit for other purposes. 

The controller can be required to write the data 
saved in the cache memory that relate to the external 
20 memory MEM in packets with a size that is a multiple of 
64 bits. 

The interface between the cache memory and the 
external memory MEM, which can only manage 8-, 16- or 
32 -bit accesses is set up in a simple manner, breaking 
25 a 64 -bit access down into eight 8 -bit accesses, four 
16-bit accesses or two 32-bit accesses respectively. 

In the case of 32 -bit access, the DES or 3DES 
algorithm will be loaded every two 32 -bit words, while 
the AES algorithm will be loaded every four 32 -bit 
3 0 words. The data are loaded on the fly. In the case of 
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"pipeline" processing of the AES algorithm, in other 
words when complete processing of a piece of data in 
one or several cycles is able to receive a new piece of 
data in each cycle, only the first access introduces a 
latency time in the total data transfer time. 

The private key used by the algorithm is 
preferably stored in a so-called OTP register (One Time 
Programmable) . If the integrated circuit IC is provided 
with a non-volatile flash memory, this register can be 
located there. 

The example of an embodiment of the invention 
described above was chosen due to its concrete nature. 
It would not, however, be possible to exhaustively list 
all the possible embodiments of this invention. 
Particularly, all the described means can be replaced 
with equivalent means without departing from the scope 
of the present invention. 



